Opensuse

Opensuse

1454 vulnerabilities found.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
4

CVE-2013-3808

  • EPSS 0.57%
  • Published 17.07.2013 13:41:16
  • Last modified 11.04.2025 00:51:21

Unspecified vulnerability in the MySQL Server component in Oracle MySQL 5.1.68 and earlier, 5.5.30 and earlier, and 5.6.10 allows remote authenticated users to affect availability via unknown vectors related to Server Options.

4

CVE-2013-3809

  • EPSS 0.46%
  • Published 17.07.2013 13:41:16
  • Last modified 11.04.2025 00:51:21

Unspecified vulnerability in the MySQL Server component in Oracle MySQL 5.5.31 and earlier and 5.6.11 and earlier allows remote authenticated users to affect integrity via unknown vectors related to Audit Log.

3.5

CVE-2013-3812

  • EPSS 0.49%
  • Published 17.07.2013 13:41:16
  • Last modified 11.04.2025 00:51:21

Unspecified vulnerability in the MySQL Server component in Oracle MySQL 5.5.31 and earlier and 5.6.11 and earlier allows remote authenticated users to affect availability via unknown vectors related to Server Replication.

5

CVE-2013-2765

Exploit
  • EPSS 5.38%
  • Published 15.07.2013 15:55:01
  • Last modified 11.04.2025 00:51:21

The ModSecurity module before 2.7.4 for the Apache HTTP Server allows remote attackers to cause a denial of service (NULL pointer dereference, process crash, and disk consumption) via a POST request with a large body and a crafted Content-Type header...

4.3

CVE-2013-1896

Exploit
  • EPSS 38.56%
  • Published 10.07.2013 20:55:01
  • Last modified 11.04.2025 00:51:21

mod_dav.c in the Apache HTTP Server before 2.2.25 does not properly determine whether DAV is enabled for a URI, which allows remote attackers to cause a denial of service (segmentation fault) via a MERGE request in which the URI is configured for han...

7.5

CVE-2013-1362

  • EPSS 76.44%
  • Published 09.07.2013 17:55:00
  • Last modified 11.04.2025 00:51:21

Incomplete blacklist vulnerability in nrpc.c in Nagios Remote Plug-In Executor (NRPE) before 2.14 might allow remote attackers to execute arbitrary shell commands via "$()" shell metacharacters, which are processed by bash.

1.9

CVE-2013-2168

  • EPSS 0.09%
  • Published 03.07.2013 18:55:01
  • Last modified 11.04.2025 00:51:21

The _dbus_printf_string_upper_bound function in dbus/dbus-sysdeps-unix.c in D-Bus (aka DBus) 1.4.x before 1.4.26, 1.6.x before 1.6.12, and 1.7.x before 1.7.4 allows local users to cause a denial of service (service crash) via a crafted message.

9.3

CVE-2013-1690

Warning
  • EPSS 49.62%
  • Published 26.06.2013 03:19:10
  • Last modified 11.04.2025 00:51:21

Mozilla Firefox before 22.0, Firefox ESR 17.x before 17.0.7, Thunderbird before 17.0.7, and Thunderbird ESR 17.x before 17.0.7 do not properly handle onreadystatechange events in conjunction with page reloading, which allows remote attackers to cause...

6.8

CVE-2013-1987

  • EPSS 0.89%
  • Published 15.06.2013 19:55:01
  • Last modified 11.04.2025 00:51:21

Multiple integer overflows in X.org libXrender 0.9.7 and earlier allow X servers to trigger allocation of insufficient memory and a buffer overflow via vectors related to the (1) XRenderQueryFilters, (2) XRenderQueryFormats, and (3) XRenderQueryPictI...

6.8

CVE-2013-2064

  • EPSS 0.94%
  • Published 15.06.2013 19:55:01
  • Last modified 11.04.2025 00:51:21

Integer overflow in X.org libxcb 1.9 and earlier allows X servers to trigger allocation of insufficient memory and a buffer overflow via vectors related to the read_packet function.